<?php

class UsuariosController extends Controller
{
	
	/**
	 * @var string the default layout for the views. Defaults to '//layouts/column2', meaning
	 * using two-column layout. See 'protected/views/layouts/column2.php'.
	 */
	public $layout='//layouts/column2';

	/**
	 * @return array action filters
	 */
	public function filters()
	{
		return array(
			'accessControl', // perform access control for CRUD operations
			'postOnly + delete', // we only allow deletion via POST request
			);
	}



	/**
	 * Specifies the access control rules.
	 * This method is used by the 'accessControl' filter.
	 * @return array access control rules
	 */
	public function accessRules()
	{
		return array(
			/*array('allow',  
				'actions'=>array('index','view','assign'),
				'users'=>array('*'),
				),*/
			array('allow', // allow authenticated user to perform 'create' and 'update' actions
				'actions'=>array('create','update','delete','admin','assign','index','view', 'change'),
			    //'users'=>array('@'),
				'roles'=>array('Administrador'),
				),
			array('allow',
				'actions'=>array('change'),
				'users'=>array('@'),
				),
			array('deny',  // deny all users
				'users'=>array('*'),
				),
			);
	}

	//cambiar contraseña

	public function actionChange()
	{
		$model = new ChangeForm;

		if (isset($_POST['ChangeForm']))
		{
			$model->setAttributes($_POST['ChangeForm']);

			if ($model->validate())
			{
				$pass =$_POST['ChangeForm']['password_new']; 
				$userModel = usuarios::model()->findByPk(Yii::app()->user->id);
				$userModel->password = $pass; 
				$data = $userModel->update();
				
				if (isset($data))
				{
					Yii::app()->user->setFlash('success', 'Contraseña cambiada correctamente');
					
				}
				else
				{
					Yii::app()->user->setFlash('error', 'No se pudo cambiar la contraseña');
					
				}
			}
		}

		$this->render('change',array('model'=>$model,true));
	}


	/**
	 * Displays a particular model.
	 * @param integer $id the ID of the model to be displayed
	 */
	public function actionView($id)
	{
		$role=new RoleForm;
		if(isset($_POST["RoleForm"]))
		{
			$role->attributes=$_POST["RoleForm"];
			if($role->validate())
			{
				
				Yii::app()->authManager->createRole($role->name,$role->description);
				Yii::app()->authManager->assign($role->name,$id);
				$this->redirect(array("view","id"=>$id));
			}
		}
		$this->render('view',array(
			'model'=>$this->loadModel($id),
			"role"=>$role,
			));
    /*$usuarios=usuarios::model()->findByPk($id);
    $this->render('view',array('model'=>$usuarios));*/
}

	/**
	 * Creates a new model.
	 * If creation is successful, the browser will be redirected to the 'view' page.
	 */
	
	public function actionCreate()
	{
		$model=new usuarios;

     
		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);
		if(isset($_POST['cancelar']))
			$this->redirect(array('admin'));

		if(isset($_POST['usuarios']))
		{

			$model->attributes=$_POST['usuarios'];
		 // $model->password=md5($model->password);//meter md5($model->password);
				
			if ($model->save()) 
			{	
	           Yii::app()->user->setFlash('success', '<strong>Se ha agregado el usuario correctamente.</strong>');//muestra el mensaje de accion
				$this->redirect(array('admin','id'=>$model->Us_idusuario_PK));
			}
			else
			{
				Yii::app()->user->setFlash('error', '<strong>al agregar el usuario </strong>');//muestra el mensaje de accion
			}
	

		}

		$this->render('create',array(
			'model'=>$model,
			));
	}
	
	/**
	 * Updates a particular model.
	 * If update is successful, the browser will be redirected to the 'view' page.
	 * @param integer $id the ID of the model to be updated
	 */
	public function actionUpdate($id)
	{
		$model=$this->loadModel($id);

		// Uncomment the following line if AJAX validation is needed
		// $this->performAjaxValidation($model);
		if(isset($_POST['cancelar']))
			$this->redirect(array('admin'));

		if(isset($_POST['usuarios']))
		{
			$model->attributes=$_POST['usuarios'];
			//$model->password=md5($model->password);
			if($model->save())
			{
			    Yii::app()->user->setFlash('success', '<strong>Se ha actualizado el usuario correctamente.</strong>');//muestra el mensaje de accion
				$this->redirect(array('admin','id'=>$model->Us_idusuario_PK));
			}
			else
			{
				Yii::app()->user->setFlash('error', '<strong>al actualizar el usuario </strong>');//muestra el mensaje de accion
			}
		}

		$this->render('update',array(
			'model'=>$model,
			));
	}

	/**
	 * Deletes a particular model.
	 * If deletion is successful, the browser will be redirected to the 'admin' page.
	 * @param integer $id the ID of the model to be deleted
	 */
	public function actionDelete($id)
	{
		$this->loadModel($id)->delete();

		// if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser
		if(!isset($_GET['ajax']))
			$this->redirect(isset($_POST['returnUrl']) ? $_POST['returnUrl'] : array('admin'));
	}

	/**
	 * Lists all models.
	 */
	public function actionIndex()
	{
		$dataProvider=new CActiveDataProvider('usuarios');
		$this->render('index',array(
			'dataProvider'=>$dataProvider,
			));
	}

	/**
	 * Manages all models.
	 */
	public function actionAdmin()
	{
		$model=new usuarios('search');
		$model->unsetAttributes();  // clear any default values
		if(isset($_GET['usuarios']))
			$model->attributes=$_GET['usuarios'];

		$this->render('admin',array(
			'model'=>$model,
			));


//PARA PANTALLA MODAL ACCION CREATE
		$model=new usuarios;

			if(isset($_POST['cancelar']))
			$this->redirect(array('admin'));

		if(isset($_POST['usuarios']))
		{
			$model->attributes=$_POST['usuarios'];
			if($model->save())
				{	
					Yii::app()->user->setFlash('success', '<strong>Bien hecho Se ha insertado los datos correctamente.</strong>');//muestra el mensaje de accion
					$this->redirect(array('admin','id'=>$model->Us_idusuario_PK));
				}

			else
			{
				Yii::app()->user->setFlash('error', '<strong>al insertar los datos</strong>');//muestra el mensaje de accion
			}	
		}




		
	}// fin del admin
	public function actionAssign($id)
	{
		if(Yii::app()->authManager->checkAccess($_GET["item"],$id))
			Yii::app()->authManager->revoke($_GET["item"],$id);
		
		else
			Yii::app()->authManager->assign($_GET["item"],$id);
		
		$this->redirect(array("view","id"=>$id));
	}

	/**
	 * Returns the data model based on the primary key given in the GET variable.
	 * If the data model is not found, an HTTP exception will be raised.
	 * @param integer $id the ID of the model to be loaded
	 * @return usuarios the loaded model
	 * @throws CHttpException
	 */
	public function loadModel($id)
	{
		$model=usuarios::model()->findByPk($id);
		if($model===null)
			throw new CHttpException(404,'No posee privilegios para acceder a esta página.');
		return $model;
	}

	/**
	 * Performs the AJAX validation.
	 * @param usuarios $model the model to be validated
	 */
	protected function performAjaxValidation($model)
	{
		if(isset($_POST['ajax']) && $_POST['ajax']==='usuarios-form')
		{
			echo CActiveForm::validate($model);
			Yii::app()->end();
		}
	}
}
